cPanel before 64.0.21 allows attackers to read a user’s crontab file during a short time interval upon a cPAddon upgrade (SEC-257).
Name | Vendor | Start Version | End Version |
---|---|---|---|
Cpanel | Cpanel | 56.0.1 | * |
Cpanel | Cpanel | 58.0.3 | * |
Cpanel | Cpanel | 60.0.3 | * |
Cpanel | Cpanel | 62.0.1 | * |
Cpanel | Cpanel | 64.0.0 | * |